Certified Incident Handler (CIH) Practice Ecam

Disable ads (and more) with a membership for a one time $2.99 payment

Prepare for the Certified Incident Handler (CIH) Exam. Enhance your knowledge with interactive quizzes and detailed insights into cyber incident handling. Boost your exam readiness with our expert-designed questions!

Each practice test/flash card set has 50 randomly selected questions from a bank of over 500. You'll get a new set of questions each time!

Practice this question and more.


Which technique embeds virus-loaded ads in legitimate channels to spread malware?

  1. Clickjacking

  2. Malvertising

  3. Social Engineering

  4. Pharming

The correct answer is: Malvertising

The correct answer is malvertising, which refers to the practice of embedding malicious advertisements (ads) within legitimate online advertisements. Malvertising leverages trusted ad networks to distribute harmful software, making it particularly insidious as users may unknowingly click on what seems to be a harmless ad displayed on a reputable website. Once clicked, these ads can redirect users to a page that hosts malware or directly trigger the download of malicious payloads onto their devices. Malvertising is especially effective because it capitalizes on established online trust, utilizing familiar platforms where users might let their guard down. This means that even individuals with a good understanding of web safety can become victims, as the malware appears to originate from a trusted source rather than a dubious or malicious site. In contrast, clickjacking involves tricking users into clicking on something different from what they perceive, leading them to perform actions they did not intend to. Social engineering encompasses techniques that manipulate people into divulging confidential information or performing actions that compromise security, rather than directly embedding malware. Pharming, on the other hand, redirects users from legitimate websites to fraudulent ones without them realizing it, but it does not specifically involve the use of ads.